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AMENDMENTS 

In the Claims 

Please amend claims 1,15, 20, 38, and 53 as shown herein. 
Claims 8 and 41 are cancelled herein without prejudice. 

Subject matter indicated as allowable in claim 8 is incorporated into 
amended independent claims 1,15, 20, 38, and 53. 

Claims 1-4, 7, 15-23, 26-27, 38, 40, 42-44, and 53 are pending and are 
listed following: 

1. (currently amended) A network system, comprising: 

a network server configured to maintain network access information 
corresponding to users authorized to access the network syste m, the network 
access information comprising identifiers to indicate network group memberships 
that an individual user is a member of in th e n etwork system ; 

a domain controller remotely located from the network server at a remote 
network site and communicatively linked with the network server, the domain 
controller configured to locally administrate access to the network system; 

the domain controller further configured to: 

track individual users that request access to the network system via the 
domain controller at the remote network site, the domain controller configured to 
track a user by identifying the remote network site where the user requests the 
access, recording a time at which the request is made, and monitoring when the 
network access information is cached for the user that requests the access; 
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receive a first network access request from the user and validate the first 
network access request with the network access information maintained at the 
network server when the network access information is not cached at the domain 
controller; 

maintain user objects associated with the individual users that request 
access to the network system from the domain controller; 

cache the network access informatio n including the user objects ; and 



receive a second network access request from the user and validate the 
second network access request with the network access information cached at the 
domain controller[[.]] 

wherein the network server is further configured to replicate a partial copy 
of the user objects from the domain controller such that the replicated partial copy 
of the user objects can be associated with individual identifiers to identify the 
network group memberships for the individual user. 

2. (previously presented) A network system as recited in claim 1, 
wherein the domain controller is further configured to cache the network access 
information only for the individual users that request access to the network system 
via the domain controller at the remote network site. 

3. (previously presented) A network system as recited in claim 1 , 
wherein the domain controller is further configured to update the network access 
information at the domain controller for the individual users that request access to 
the network system via the domain controller at the remote network site. 
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4. (previously presented) A network system as recited in claim 1, 
wherein the domain controller is further configured to update the network access 
information at the domain controller for the individual users that request access to 
the network system via the domain controller at the remote network site within a 
defined time interval. 

5-6. (canceled) 

7. (previously presented) A network system as recited in claim 1, 
wherein the domain controller is further configured to validate the second network 
access request with the network access information cached at the domain 
controller if the second network access request is within a defined time interval. 

8-14. (canceled) 
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15. (currently amended) A network, comprising: 

a global information server configured to maintain network information 
corresponding to users of the network; 

a remote server communicatively linked with the global information server, 
the remote server configured to: 

receive a first network access request from a user and validate the first 
network access request with the network information maintained at the global 
information server when the network information corresponding to the user is not 
cached at the remote server; 

cache the network information corresponding to the user at the remote 

server; 

receive a second network access request from the user and validate the 
second network access request with the network information cached at the remote 
server; 

track individual users that request access to the network fi-om the remote 
server by identifying the remote server where the user requests the access, 
recording a time at which the request is made, and monitoring when the network 
information is cached for the user that requests the access; and 

update the network information including rephcating user objects cached at 
the remote server on the global information server for the individual users that 
access the network from the remote server. 
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16. (previously presented) A network as recited in claim 15, 
wherein the remote server is fiirther configured to update the network information 
cached at the remote server for the individual users that access the network from 
the remote server within a defined time interval. 

17. (previously presented) A network as recited in claim 15, 
wherein the remote server is further configured to validate the second network 
access request with the network information cached at the remote server if the user 
accessed the network from the remote server within a defined time interval. 

18. (original) A network as recited in claim 15, wherein the remote 
server is further configured to frack individual users that request access to the 
network information cached at the remote server. 

19. (original) A network as recited in claim 15, wherein the remote 
server is fiarther configured to receive a user request to access the network 
information cached at the remote server and validate the user request if the user 
accessed the network from the remote server within a defined time interval. 

20. (currently amended) A method, comprising: 

maintaining network access information at a first network site, the network 
access information identifying users authorized to access a network and including 
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identifiers to indicate network group memberships that an individual user is a 
member of in the ne twor k system; 

validating a first network access request fi-om a user at a second network 
site with the network access information maintained at the first network site when 
the network access information identifying the user is not cached at the second 
network site; 

caching the network access information identifying the user at the second 
network site; 

validating a second network access request from the user at the second 
network site with the network access information cached at the second network 
site; and 

tracking individual user requests to access the network from the second 
network site by identifying the second network site where the user requests the 
access, recording a time at which the user requests the access, and monitoring 
when the network access information identiJfying the user is cached for the user 
making the request[[.]] ;and, 

replicating a partial copy of user objects cached at the second network site 
such that the replicated partial copy of the user objects can be associated with 
individual identifiers to identify the network group memberships for individual 
users. 
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21. (previously presented) A method as recited in claim 20, wherein 
said caching comprises storing the network access information at the second 
network site only for the individual users that request access to the network from 
the second network site. 

22. (previously presented) A method as recited in claim 20, further 
comprising updating the network access information at the second network site for 
the individual users that periodically request access to the network from the 
second network site. 

23. (previously presented) A method as recited in claim 20, further 
comprising updating the network access information at the second network site for 
the individual users that request access to the network from the second network 

■ site within a defined time interval. 

24-25. (canceled) 

26. (previously presented) A method as recited in claim 20, wherein 
said validating the second network access request comprises validating the second 
network access request with the network access information cached at the second 
network site if the second network access request is within a defined time interval. 
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27. (previously presented) Computer readable media comprising 
computer executable instructions that, when executed, direct a computing system 
to perform the method of claim 20. 

28-37. (canceled) 

38. (currently amended) A method, comprising: 

maintaining network information at a global information server, the 
network information corresponding to users of the network and including 
identifiers to indicate network group memberships that an individual user is a 
member of in the network system ; 

receiving a first network access request from a user at a remote server 
communicatively linked with the global information server; 

validating the first network access request at the remote server with the 
network information maintained at the global information server when the network 
information corresponding to the user is not cached at the remote server; 

maintaining, at the remote server, user objects associated with the 
individual users that request access to the network system from the remote server; 

caching the network information corresponding to the user at the remote 

server; 

receiving a second network access request from the user at the remote 

server; 

validating the second network access request at the remote server with the 
network information cached at the remote server; 
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tracking , at the global information server, users that request access to the 
network via the remote server by identifying where the access requests originate 
and recording a time at which the access requests are made; astd 

updating the network information cached at the remote server with the 
network information maintained at the global information server for users 
authorized to access the network from the remote server, and that accessed the 
remote server within a defined time interval ; and, 

replicating a partial copy of the user objects from the remote server such 
that the replicated partial copy of the user objects can be associated with 
individual identifiers to identify the network group memberships for the individual 
user . 

39. (canceled) 

40. (previously presented) A method as recited in claim 38, wherein 
said validating the second network access request comprises validating the second 
network access request with the network information cached at the remote server 
if the second network access request is received within a defined time interval. 

41. (cancelled) 
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42. (previously presented) A method as recited in claim 38, farther 
comprising: 

receiving a user request to access the network information cached at the 
remote server; and 

validating the user request at the remote server. 

43. (previously presented) A method as recited in claim 38, further 
comprising: 

receiving a user request to access the network information cached at the 
remote server; and 

validating the user request at the remote server if the user request is 
received within a defined time interval. 

44. (previously presented) Computer readable media comprising 
computer executable instructions that, when executed, direct a computing system 
to perform the method of claim 38. 

45-52. (canceled) 
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53. (currently amended) A network system, comprising: 

a global information server located at a main site on a network and 
configured to maintain network access information corresponding to users 
authorized to access the network; 

a domain controller located at a remote site on the network and 
communicatively linked with the global information server, the domain controller 
configured to periodically cache the network access information from the global 
information server and to locally administrate network access requests made from 
a work station locally connected to the domain controller at the remote site , and to 
maintain a cache of user objects associated with the individual users that request 
access to the network system fi:om the domain controller ; and 

th e domain controller further configured to track individual users that 
r e quest access to the networ k b y i de ntifying th e r e mote site whore the request is 
made and a time at which the r e quest is made. 

the global information server further configured to replicate a partial copy 
of the user objects from the remote server such that the replicated partial copy of 
the user objects such that individual user objects are associated with specific 
network access information. 
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